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DETAILED ACTION 
Response to Amendment 

Status of the Application: 

• Claims 1 - 29 are original in the instant application. 

• No claims are amended in the instant application. 

• No claims are cancelled in the instant application. 

• Referring to claims 1 - 5 under the 35 USC 101 for non-statutory subject 
matter, applicants arguments have been fully considered and are not 
persuasive, please see the office action below for details. 

• Referring to claims 9 - 1 2 & 1 6 - 1 8 & 23 - 25 & 26 - 29 under the 35 
USC 101 for non-statutory subject matter, applicants arguments have 
been fully considered and are not persuasive, please see the office action 
below for details. 

Response to Arguments 

• Applicants arguments/remarks filed 06/1 1/2008 have been fully 
considered and found to be not persuasive. 

Examiners response to applicant's arguments/remarks 



Applicant states:" However, this section of Kaplan does not disclose that the associated 
header for the data encryption key defines which of the cryptographic units are to use the 
data encryption key." 
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• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to Col. 88, lines 36 - 42 & Col. 89, lines 40 - 51 , the 
examiner notes that the headers are for example, DEK (or Data encryption 
keys), KEK (or Key Encryption keys), HMAC (or Message Authentication 
Code keys), which describe what the keys function is, and what the 
perspective crypto processor is to do with it, based on what Application 
requested it. 



Applicant states:" Because Kaplan does not disclose each element of claim 1, Applicant 
respectfully submits that the rejection of claim 1 under 35 U.S.C. §102 has been 
overcome. " 

• The examiner respectfully disagrees with applicant's logic and reasoning, 
the examiner points to the examiners previous logic and reasoning above. 



Applicant states:" However, these sections doe not disclose two different units within a 
cryptographic processor, wherein an intermediate result generated by a first unit for use 
by a second unit of a cryptographic processor is not accessible external to the 
cryptographic processor. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to Col. 6, lines 55 - 61 , the examiner notes that the 
ASIC is the cryptoprocessor, which can contain, multiple different 
processors. 



Applicant states:" Because Dariel does not disclose each element of claims 6 and 13, 
Applicant respectfully submits that the rejection of claims 6 and 13 under 35 U.S.C. §102 
has been overcome. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to examiner previous logic and reasoning above. 



Applicant states:" This section does not disclose loading a key into a cryptographic unit 
for execution of a cryptographic operation if a response to a challenge (from the 
application processor that generated the primitive instruction for a cryptographic 
operation) is correct. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to Col. 3, lines 63 - 67 & Col. 7, lines 28 - 36, Figure 
#2, component # 16, the examiner notes that the examiner interprets, 
"loading a key into a cryptographic unit for execution of a cryptographic 
operation if a response to a challenge (from the application processor that 
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generated the primitive instruction for a cryptographic operation) is 
correct.," as if the ASIC (or application specific integrated circuit) is 
authenticated by the server, then the decryption keys will be sent to the 
ASIC to decrypted the requested encrypted content. 



Applicant states:" Because Dariel does not disclose each element of claim 9, Applicant 
respectfully submits that the rejection of claim 9 under 35 U.S.C. §102 has been 
overcome. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to examiner previous logic and reasoning above. 



Applicant states:" Claim 19 includes a similar limitation to claim 9 - "performing the 
following operations, if the response is correct." The Office did not indicate where this 
limitation was disclosed. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to Col. 3, lines 63 - 67 & Col. 7, lines 28 - 36, Figure 
#2, component # 16, also please examiner previous logic and reasoning, 
that is reproduced below regarding this claim. 



Applicant states:" Accordingly, for at least the reasons set forth for claim 9, Applicant 
respectfully submits that the rejection of claim 19 under 35 U.S.C. §102 has been 
overcome. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to examiner previous logic and reasoning above. 



Applicant states:" However, these sections of Dariel do not disclose performing an 
operation in a cryptographic unit using a key if the header associated with that key 
defines the cryptographic unit. " 
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• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to Col. 6, lines 55 - 61 , the examiner notes that there 
are multiple different cryptographic coprocessors, on the ASIC that will 
generate encrypted content according to a specific protocol (i.e. DES or 
AES) that utilizes a key that is specifically or algorithmically generated by 
the crypto co-processor. 



Applicant states:" Because Dariel does not disclose each element of claim 16, Applicant 
respectfully submits that the rejection of claim 16 under 35 U.S.C. § 102 has been 
overcome. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to examiner previous logic and reasoning above. 



Applicant states:" However, these sections of Howard do not disclose 

performing an operation in a cryptographic unit using a key if the header associated with 

that key defines the cryptographic unit. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to Col. 5, lines 50 - 67, but specifically Col. 5, lines 59 
- 67, the examiner notes that the value v2 points to seed key k1 , which 
then is hashed and a real key k2 # 320 is produced for the encryption of 
the requested data. 



Applicant states:" Because Howard does not disclose each element of claim 23, 
Applicant respectfully submits that the rejection of claim 23 under 35 U.S.C. § 102 has 
been overcome. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to the examiners previous logic and reasoning above. 



Applicant states:" Among the differences, claim 26 recites "performing the following 
operations, if the response is correct.'The Office did not indicate what sections of 
Howard include this limitation. " 

* The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to Col. 3, lines 63 - 67 & Col. 7, lines 28 - 36, Figure 
#2, component # 16, also please examiner previous logic and reasoning, 
that is reproduced below regarding this claim. 
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Applicant states:" Because Howard does not disclose each element of claim 26, 
Applicant respectfully submits that the rejection of claim 26 under 35 U.S.C. §102 has 
been overcome. " 

• The examiner respectfully disagrees with applicants logic and reasoning, 
the examiner points to the examiners previous logic and reasoning above. 

Specification 

1 . The disclosure is objected to because of the following 
informalities: the applicant's summary is missing. 

Appropriate correction is required. 

Claim Rejections - 35 USC § 101 

2. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or 
composition of matter, or any new and useful improvement thereof, may obtain a patent 
therefor, subject to the conditions and requirements of this title. 

Claim(s) 1 - 5 are rejected under 35 U.S.C. 101 because the 
claimed invention is directed to non-statutory subject matter. 
The claims lack the necessary physical articles or objects to 
constitute a machine or a manufacture within the meaning of 
35 USC 101 . They are clearly not a series of steps or acts to 
be a process nor are they a combination of chemical 
compounds to be a composition of matter. As such, they fail 



Application/Control Number: 10/815,454 Page 7 

Art Unit: 2134 

to fall within a statutory category. They are, at best, 
functional descriptive material perse. 
Furthermore the examiner would like to note that the claim 
limitations describe software per se, which is clearly not a 
statutory category. 

Claim(s) 9 - 12 & 16 - 18 & 23 - 25 & 26 - 29 are rejected 
under 35 U.S.C. 101 because the claimed invention is 
directed to non-statutory subject matter. Claims(s) 9 - 12 & 
16 - 18 & 23 - 25 & 26 - 29 are directed to cryptographic 
processor, that contains a non-volatile memory, program 
instructions, a controller. 

This claimed subject matter lacks a practical application 
of a judicial exception (law of nature, abstract idea, naturally 
occurring phenomenon) since it fails to produce a useful, 
concrete and tangible result. Specifically, the claimed subject 
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matter does not produce a tangible result because the 
claimed subject matter fails to produce a result that is limited 
to having real world value rather than a result that may be 
interpreted to be abstract in nature as, for example, a 
thought, a computation, or manipulated data. More 
specifically, the claimed subject matter provides for the 
above mentioned claims recite claim limitations that are 
conditional in nature, meaning that "if event (Z) happens 
then event (X) will be executed." Then what if event (Z) 
doesn't happen, then event (X) will not happen. The 
examiner point is, if event (Z) doesn't happen, then nothing 
tangible is happening to event (X), which would be 
"executing event (X)." Specifically, the examiner notes that 
the independent claim # 9 is only tangible if the "response is 
correct", then the examiner concludes that the cryptographic 
key is just sitting in memory (non - volatile), being not 
tangible. 
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This produced result remains in the abstract and, thus, 
fails to achieve the required status of having real world 
value. 



Claim Rejections - 35 USC § 102 

3. The following is a quotation of the appropriate 
paragraphs of 35 U.S.C. 102 that form the basis for the 
rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1 ) an application for patent, published under section 
122(b), by another filed in the United States before the invention by the applicant for patent or 
(2) a patent granted on an application for patent by another filed in the United States before 
the invention by the applicant for patent, except that an international application filed under 
the treaty defined in section 351 (a) shall have the effects for purposes of this subsection of an 
application filed in the United States only if the international application designated the United 
States and was published under Article 21(2) of such treaty in the English language. 

Claim(s) 1 - 5 are rejected under 35 U.S.C. 102(e) as being 
taught by Kaplan et al. (US Patent # 6704871 B1 ) 

Kaplan teaches: 



Claim #1. An apparatus comprising: 
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• one or more cryptographic units (Col. 6, lines 55-61 & 
Col. 4, lines 42 - 44 & Col. 4, lines 57 - 63); and 

• a memory to store one or more data encryption keys 
and an associated header for the one or more data 
encryption keys(Col. 6, lines 40 - 45), 

wherein 

• the associated header defines which of the one or more 
cryptographic units are to use the data encryption 
key(Col. 41 , lines 53 - 67 & Col. 42, lines 1 - 5 ). 

Claim #2. The apparatus of claim 1, wherein 



the associated header defines a usage type for the data 
encryption key(Col. 41, lines 53 - 67 & Col. 42, lines 1 
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-5). 

Claim #3. The apparatus of claim 2 further comprising 

• a controller to restrict which of the one more 
cryptographic units are to use the data encryption key 
and a type of operation based on the associated header 
for the data encryption key(Col. 22, lines 18 - 39 & Col. 
24, lines 61 - 65 & Col. 27, lines 56 - 64). 

Claim #4. The apparatus of claim 1, wherein 

• the associated header defines an identification of a key 
encryption key used to encrypt the one or more data 
encryption keys(Col. 7, lines 66 - 67 & Col. 8, lines 1 - 
17 & Col. 39, lines 49 - 60 & Col. 40, lines 14 - 20). 



Claim #5. The apparatus of claim 1, wherein 
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• the one or more cryptographic units is from a group 
consisting of an 

• advanced encryption standard unit(), 

• a data encryption standard unit(Col. 5, lines 13 - 65), 

• a message digest unit() and 

• a secure hash algorithm unit(Col. 5, lines 66 - 67 & Col. 
6, lines 1 - 5 & Col. 6, lines 61 - 67 & Col. 10, lines 27 - 
34 )or 

• an exponential algorithmic unit(). 

Claim(s) 6 - 22 are rejected under 35 U.S.C. 102(e) as being 
taught by Dariel (US Patent # 7058818). 



Dariel teaches: 



Claim #6. An apparatus comprising: 
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• a cryptographic processor within a wireless device(Col. 
6, lines 4- 15), 

the cryptographic processor comprising: 

• a first cryptographic unit to generate an intermediate 
result from execution of a first operation(Col. 4, lines 19 

- 25 & Col. 3, lines 1 - 55 & Col. 3, lines 19 - 25 & Col. 
6, lines 14-27, Figure # , the examiner notes that the 
examiner considers the first cryptographic unit as equal 
to the second cryptographic unit, reasoning that 
applicant doesn't differentiate between first and second 
cryptographic unit, therefore they are one and the 
same); and 

• a second cryptographic unit to generate a final result 
from execution of a second operation based on the 
intermediate result(Col. 4, lines 19 - 25 & Col. 3, lines 1 

- 55 & Col. 3, lines 19 - 25 & Col. 6, lines 14 - 27, 
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Figure # , the examiner notes that the examiner 
considers the first cryptographic unit as equal to the 
second cryptographic unit, reasoning that applicant 
doesn't differentiate between first and second 
cryptographic unit, therefore they are one and the 
same), 

wherein 

• the intermediate result is not accessible external to the 
cryptographic processor(Col. 4, lines 50 - 52). 

Claim #7. The apparatus of claim 6, wherein 

• the first cryptographic unit and the second 
cryptographic unit are from a group consisting of an 
advanced encryption standard unit, a data encryption 
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standard unit, a message digest unit and a secure hash 
algorithm unit or an exponential algorithmic unit(Col. 6, 
lines 55 - 61 & Col. 4, lines 1- 5 & Col. 7, lines 42 - 47). 

Claim #8. The apparatus of claim 6, wherein 



• the first operation includes the use of a cryptographic 
key(Col. 3, lines 38-47), 

wherein 

• the cryptographic key is not loaded into the first 
cryptographic unit until the cryptographic key is 
authenticated(Col. 3, lines 63 - 67). 
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• a dipole antenna to receive a communication(Col. 6, 
lines 4-15, the examiner notes that a mobile or 
cellular phone will have a dipole antenna, that receives 
radio waves); 

• an application processor to generate a primitive 
instruction for a cryptographic operation that is to use a 
cryptographic key based on the communication(Col. 4, 
lines 19 - 25 & Col. 3, lines 1 - 55 & Col. 3, lines 19 - 
25 & Col. 6, lines 14-27, the examiner considers the 
co-processor as a application processor that executes 
encryption and decryption of the data and keys); and 

a cryptographic processor that comprises: 
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• a memory to store the cryptographic key(Col. 6, lines 
22 - 29); 

a number of cryptographic units, wherein 

• one of the number of cryptographic units is to generate 
a challenge to the use of the cryptographic key, wherein 
the application processor is to generate a response to 
the challenge(Col. 3, lines 63 - 67); and 

• a controller to load the cryptographic key into one of the 
number of cryptographic units for execution of the 
cryptographic operation if the response is correct (Col. 
7, lines 20 - 32). 

Claim #10. The system of claim 9, wherein 
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• the cryptographic processor further comprises a 
nonvolatile memory that is to store a number of 
microcode instructions(Col. 6, lines 22 - 29), 



wherein 



• the controller is to load the cryptographic key into one 
of the number of cryptographic units based on at least 
part of the number of microcode instructions(Col. 7, 
lines 20 - 32 &Col. 6, lines 22 - 29). 



Claim #1 1 . The system of claim 9, wherein 



® the controller is to abort execution of the cryptographic 
operation if the response is not correct(Col. 7, lines 20 
- 32, the examiner notes that to one of ordinary skill in 
the art, if the user or remote platform isn't authenticated 



Application/Control Number: 10/815,454 
Art Unit: 2134 



Page 19 



then the request encrypted data will not be transferred). 
Claim #12. The system of claim 9, wherein 

• the response includes a hash of a password associated 
with the cryptographic key(Col. 6, lines 55 - 60). 

Claim #13. A system comprising: 

• an application processor, within a wireless device, to 
generate a primitive instruction related to a 
cryptographic operation (Col. 4, lines 19 - 25 & Col. 3, 
lines 1 - 55 & Col. 3, lines 19 - 25 & Col. 6, lines 14 - 
27, the examiner considers the co-processor as a 
application processor that executes encryption and 
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decryption of the data and keys); and 

a cryptographic processor, within the wireless device, the 
cryptographic processor comprising: 

• a controller to receive the primitive instruction, wherein 
the controller is to retrieve a number of microcode 
instructions from a nonvolatile memory within the 
cryptographic processor (Col. 6, lines 22 - 29 & Col. 7, 
lines 20 - 32 ); 

• a first functional unit to generate an intermediate result 
from execution of a first operation based on a first of the 
number of microcode instructions(Col. 4, lines 19-25 
& Col. 3, lines 1 - 55 & Col. 3, lines 19 - 25 & Col. 6, 
lines 14-27, Figure # , the examiner notes that the 
examiner considers the first cryptographic unit as equal 
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to the second cryptographic unit, reasoning that 
applicant doesn't differentiate between first and second 
cryptographic unit, therefore they are one and the 
same); and 



• a second functional unit to generate a final result for the 
cryptographic operation based on the intermediate 
result, from execution of a second operation based on a 
second of the number of microcode instructions, 
wherein the intermediate result is not accessible 
external to the cryptographic processor(Col. 4, lines 19 
- 25 & Col. 3, lines 1 - 55 & Col. 3, lines 19 - 25 & Col. 
6, lines 14-27, Figure # , the examiner notes that the 
examiner considers the first cryptographic unit as equal 
to the second cryptographic unit, reasoning that 
applicant doesn't differentiate between first and second 
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cryptographic unit, therefore they are one and the 



Claim #14. The system of claim 13, wherein 

• the cryptographic processor further compromises a 
volatile memory to store a cryptographic key(Col. 6, 
lines 22 - 29). 

Claim #15. The system of claim 14, wherein 

• the second functional unit is to use the cryptographic 
key to generate the final result, wherein the controller is 
not to load the cryptographic key into the second 
functional unit until the application processor is to 
authenticate the cryptographic key(Col. 3, lines 63 - 
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67). 

Claim #16. A method comprising: 

• receiving a primitive instruction into a cryptographic 
processor(Col. 3, lines 63 - 67, the examiner notes that 
the cryptographic processor located on the ASIC 
(application specific integrated circuit) initiates with the 
content server for requesting content), for 

• execution of a cryptographic operation that uses a data 
encryption key that is protected within the cryptographic 
processor(Col. 3, lines 25 - 62 & Col. 7, lines 20 - 48 ); 

• retrieving the data encryption key and an associated 
header for the data encryption key, wherein the 
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associated header defines which of one or more 
cryptographic units are to use the data encryption 
key(Col. 3, lines 25 - 62 & Col. 7, lines 20 - 48, the 
examiner notes that the data packets sent from the 
content server to the ASIC and cryptographic, co- 
processors, will contain the necessary IP addresses to 
reach the ASIC and processor ); and 

• performing an operation within one of the one or more 
cryptographic units using the data encryption key, if the 
associated header defines the one of the one or more 
cryptographic units(Col. 3, lines 25 - 62 & Col. 7, lines 
20-48). 

Claim #17. The method of claim 16, wherein 
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• the associated header defines a usage type for the data 
encryption key(Col. 3, lines 25 - 62 & Col. 7, lines 20 - 
48, the examiner notes that the data packets sent from 
the content server to the ASIC and cryptographic, co- 
processors, will contain the necessary IP addresses to 
reach the ASIC and processor ). 

Claim #18. The method of claim 17, wherein 

• performing the operation within one of the one or more 
cryptographic units using the data encryption key 
comprises performing the operation within one of the 
one or more cryptographic units using the data 
encryption key if a type of the operation is defined by 
the usage type(Col. 3, lines 25 - 62 & Col. 7, lines 20 - 
48, the examiner notes that the data packets sent from 
the content server to the ASIC and cryptographic, co- 
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processors, will contain the necessary IP addresses to 
reach the ASIC and processor). 

Claim #19. A method comprising: 



• receiving a primitive instruction into a cryptographic 
processor from an application executing on an 
application processor, for execution of a cryptographic 
operation that uses a cryptographic key that is 
protected within the cryptographic processor (Col. 3, 
lines 63 - 67 & Col. 7, lines 20 - 48 ); 

• generating a challenge for use of the cryptographic key 
back to the application (Col. 3, lines 63 - 67 & Col. 7, 
lines 20 - 48, the examiner notes that the user platform 
or remote platform send a authorization request or 
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challenge to obtain clearance to gain access to the 
request content from the content server); 

• receiving a response to the challenge into the 
cryptographic processor from the application (Col. 3, 
lines 63 - 67 & Col. 7, lines 20 - 48, the examiner 
notes that the user platform or remote platform "will" or 
"will not" have access to the requested content based 
on if the user's authentication data matches the content 
server user's authentication data); 

performing the following operations, if the response is 
correct: 

• loading the cryptographic key into a functional unit of 
the cryptographic processor (Col. 3, lines 63 - 67 & 
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Col. 7, lines 20-48); and 

• executing an operation within the functional unit using 
the cryptographic key (Col. 3, lines 63 - 67 & Col. 7, 
lines 20-48). 

Claim #20. The method of claim 19, further comprising 

• aborting execution of the primitive instruction if the 
response is not correct (Col. 3, lines 63 - 67 & Col. 7, 
lines 20 - 48, the examiner notes that the user platform 
or remote platform "will" or "will not" have access to the 
requested content based on if the user's authentication 
data matches the content server user's authentication 
data). 

Claim #21. The method of claim 19, wherein 
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• receiving the response to the challenge into the 
cryptographic processor from the application includes 
receiving a hash of a password associated with the 
cryptographic key (Col. 3, lines 63 - 67 & Col. 7, lines 
20-48). 

Claim #22. The method of claim 21, wherein 

• performing the following operations, if the response is 
correct comprises performing the following operations, 
if the hash of the password is equal to a hash of the 
password generated within the cryptographic processor 
(Col. 3, lines 63 - 67 & Col. 7, lines 20 - 48). 

Claim(s) 23-29 are rejected under 35 U.S.C. 102(e) as being 
taught by Howard et al. (US Patent # 7269736 B2). 
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Howard teaches: 

Claim #23. A machine-readable medium that provides 
instructions, which when executed by a machine, cause said 
machine to perform operations comprising (Col. 3, lines 9 - 
13): 

• receiving a primitive instruction into a cryptographic 
processor, for execution of a cryptographic operation 
that uses a data encryption key that is protected within 
the cryptographic processor (Col. 2, lines 60 - 65 & 
Col. 5, lines 17-22); 

• retrieving the data encryption key and an associated 
header for the data encryption key, wherein the 
associated header defines which of one or more 
cryptographic units are to use the data encryption 
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key(Col. 2, lines 60-65 & Col. 5, lines 17-49 & 
Figure # 2a & 2b, the examiner notes that the data 
packets that are sent to the second device will 
inherently have a source and destination address to the 
processor of the mobile device, to be encrypted); and 

• performing an operation within one of the one or more 
cryptographic units using the data encryption key, if the 
associated header defines the one of the one or more 
cryptographic units (Col. 2, lines 60 - 65 & Col. 5, lines 
17-49). 

Claim #24. The machine-readable medium of claim 23, 
wherein 

• the associated header defines a usage type for the data 
encryption key (Col. 2, lines 60 - 65 & Col. 5, lines 17 - 
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49, the examiner notes that the data packets will 
indicate whether they are to be encrypted or not to the 
second device). 

Claim #25. The machine-readable medium of claim 24, 
wherein 

• performing the operation within one of the one or more 
cryptographic units using the data encryption key 
comprises performing the operation within one of the 
one or more cryptographic units using the data 
encryption key if a type of the operation is defined by 
the usage type (Col. 2, lines 60 - 65 & Col. 5, lines 17 - 
49 & Figure # 2a & 2b, the examiner notes that the data 
packets that are sent to the second device will 
inherently have a source and destination address to the 
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processor of the mobile device, to be encrypted). 



Claim #26. A machine-readable medium that provides 
instructions, which when executed by a machine, cause said 
machine to perform operations comprising (Col. 3, lines 9 - 
13): 



• receiving a primitive instruction into a cryptographic 
processor from an application executing on an 
application processor, for execution of a cryptographic 
operation that uses a cryptographic key that is 
protected within the cryptographic processor (Col. 5, 
lines 17-22); 
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• generating a challenge for use of the cryptographic key 
back to the application(Col. 6, lines 15-18); 

• receiving a response to the challenge into the 
cryptographic processor from the application(Col. 6, 
lines 15-18); 

performing the following operations, if the response is 
correct: 

• loading the cryptographic key into a functional unit of 
the cryptographic processor (Figure # 2 & Col. 5, lines 
16-40); and 

• executing an operation within the functional unit using 
the cryptographic key(Col. 5, lines 16 - 40). 
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Claim #27. The machine-readable medium of claim 26, 
further comprising 

• aborting execution of the primitive instruction if the 
response is not correct(Col. 6, lines 15 - 18, the 
examiner notes that if the user cancels the transfer of 
the data to be encrypted the execution will be 
"aborted"). 

Claim #28. The machine-readable medium of claim 26, 
wherein 

• receiving the response to the challenge into the 
cryptographic processor from the application includes 
receiving a hash of a password associated with the 
cryptographic key(Col. 6, lines 15-18). 

Claim # 29. The machine-readable medium of claim 28, 
wherein 
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• performing the following operations, if the response is 
correct comprises performing the following operations, 
if the hash of the password is equal to a hash of the 
password generated within the cryptographic processor 
(Col. 6, lines 15 -18). 



Conclusion 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1 .136(a). 

A shortened statutory period for reply to this final action is set to expire 
THREE MONTHS from the mailing date of this action. In the event a first reply is 
filed within TWO MONTHS of the mailing date of this final action and the advisory 
action is not mailed until after the end of the THREE-MONTH shortened statutory 
period, then the shortened statutory period will expire on the date the advisory 
action is mailed, and any extension fee pursuant to 37 CFR 1.136(a) will be 
calculated from the mailing date of the advisory action. In no event, however, will 
the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to DANT B. SHAIFER HARRIMAN whose 



Application/Control Number: 10/815,454 Page 37 

Art Unit: 2134 

telephone number is (571)272-7910. The examiner can normally be reached on 
Monday - Thursday: 8:00am - 5:30pm Alt.Fridays off. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Kambiz Zand can be reached on (571 ) 272-381 1 . The 
fax phone number for the organization where this application or proceeding is 
assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). If you would like assistance from a USPTO Customer Service 
Representative or access to the automated information system, call 800-786- 
9199 (IN USA OR CANADA) or 571-272-1000. 

/Dant B Shaifer - Harriman / 
Examiner, Art Unit 2134 

07/16/2008 

/Kambiz Zand/ 

Supervisory Patent Examiner, Art Unit 2134 



